Security
Security
A vulnerability was discovered in hesiod which may allow remote attackers to gain root privileges.
| Package | net-dns/hesiod on all architectures |
|---|---|
| Affected versions | <= 3.1.0 |
| Unaffected versions |
DNS functionality to access to DB of information that changes infrequently.
Multiple vulnerabilities have been discovered in hesiod that have remained unaddressed. Please review the referenced CVE identifiers for details.
A remote or local attacker may be able to escalate privileges to root.
There is no known workaround at this time.
Gentoo has discontinued support for hesiod and recommends that users unmerge the package:
# emerge --unmerge "net-dns/hesiod"
Release date
May 02, 2018
Latest revision
May 02, 2018: 1
Severity
normal
Exploitable
local, remote
Bugzilla entries